However, this link leads to a malicious website that grabs credentials and other sensitive data from Google Chrome. This data is then used to create dozens of blogs registered to the victim's' Gmail address. These blogs are used to further disseminate the scam, BitDefender said "Scammers gave a new twist to the old change-your-Facebook-color scheme that's been luring users to fraudulent websites to grab credentials and other sensitive data," said Catalin Cosoi, chief security strategist, Bitdefender. "By creating dozens of blogs for a single account, the scam spreads like wildfire among Facebook friends."The scam has gotten so big, it's generated a huge number of hits in the United States, the United Kingdom, Germany, Spain, Romania, and other countries. And it doesn't just create blogs – the sinister Chrome app will also post wall messages on the victim's' Facebook account. "The messages use friend tagging to convince the victim's friends to visit the blog domains. Each time the app posts on a users' timeline, it links to one of the auto-generated blogs to avoid blacklisting," the company said on Friday.

Naturally BitDefender is encouraging users to install an antivirus solution, and to use the free Safegoapplication which protects Facebook and Twitter accounts from scams, spam, malware and private data exposure. But what's really unfortunate is that apps like this even make it into the Chrome Web Store in the first place.Cross-posted from: Tom's Guide Software